Cyber Incident Victim: Embassy of Russia in the United Kingdom
Date:
Aug 2019
Location:
United Kingdom
Summary
The Russian Embassy in the United Kingdom experienced a disruption to its website lasting nearly 20 hours following a distributed denial-of-service attack by unidentified hackers. The incident began in the late afternoon and persisted until midday the following day, when embassy IT personnel successfully restored access. An investigation into the attack was initiated, and the diplomatic mission issued apologies to individuals potentially affected by the website's unavailability during the outage.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On August 19, 2019, at approximately 16:30 GMT, the website of the Russian Embassy in London became inaccessible due to a distributed denial-of-service (DDoS) attack launched by unidentified hackers. The sustained cyber assault rendered the diplomatic mission's online platform unreliable for nearly 20 consecutive hours, significantly disrupting public access to embassy information and services. Embassy IT personnel immediately began working to mitigate the attack upon detection, though restoration efforts faced persistent challenges throughout the incident period. By 12:00 GMT on August 20, technical staff successfully restored full website functionality after implementing countermeasures against the malicious traffic flood. A spokesperson for the Russian diplomatic mission confirmed the cyberattack's duration and nature to media outlets, characterizing it as a deliberate disruption attempt against their digital infrastructure. No hacker group claimed responsibility during the active attack window, leaving the perpetrators' identity and motives unverified by embassy officials.
The embassy initiated an internal investigation immediately following service restoration to determine the attack's origin and methodology. While technical specifics of the mitigation measures weren't disclosed, the resolution confirmed that embassy IT teams contained the incident without external cybersecurity assistance. The disruption caused unspecified operational complications for individuals attempting to access consular services or embassy information during the outage period. Russian diplomatic staff issued public apologies to affected parties whose plans were potentially disrupted by the website's extended unavailability. No data breaches or secondary cyber incidents were reported in connection with the DDoS attack, with impacts limited to temporary service interruption. The investigation remained ongoing at the time of public disclosure, with no subsequent updates on findings or attribution released through official embassy channels.